Final Exam Review

The test will be a mix of multiple choice/true false/short answer/code writing.

You may bring one page of notes, front side only, which you have personally handwritten.

Browser Scripting and Ajax

Know how to embed JavaScript on a web page
Know key objects, properties, and methods in the DOM
Know how to access HTML elements using plain JavaScript
Know how to process common DOM events like button click, form submit using both Vue and plain JavaScript coding
Be able to construct a Vue application using techniques covered in class
Know how to perform client-side form validation, and the complementary roles of client-side and server-side form validation techniques
Know how to use the fetch() api to implement Ajax techniques
Know client-side state management techniques

Know how public key cryptography is used both to encrypt and to authenticate messages
Know how public key and secret key cryptography are used in https transactions
Know cookie security information
Know information from the password management lecture
Know what an SSL certificate contains
Know the following vulnerability categories: Injection, Identification and Authentication Failures, Cryptographic Failures, Broken Access Control, Cross-Site Scripting, Vulnerable and Outdated Components, Cross Site Request Forgery. Be able to classify a given security issue using these vulnerability categories, and be familiar with the techniques needed to address them.
Be able to analyze a small Node.js/Express application to determine what vulnerabilities exist, and be able to correct them (aka Exercise 4)